<?php

class UsersController extends Controller
{
	/**
	 * @var string the default layout for the views. Defaults to '//layouts/column2', meaning
	 * using two-column layout. See 'protected/views/layouts/column2.php'.
	 */
	//public $layout='//layouts/column2';

        //public $defaultAction = 'admin';

	private $_model;

	/**
	 * @return array action filters
	 */
	public function filters()
	{
		return array(
			'accessControl', // perform access control for CRUD operations
		);
	}

	/**
	 * Specifies the access control rules.
	 * This method is used by the 'accessControl' filter.
	 * @return array access control rules
	 */
	public function accessRules()
	{
		return array(
			array('allow',  // allow all users to perform 'index' and 'view' actions
				'actions'=>array('index','view'),
				'users'=>array('*'),
			),
			array('allow', // allow authenticated user to perform 'create' and 'update' actions
				'actions'=>array('create','update'),
				'users'=>array('@'),
			),
			array('allow', // allow admin user to perform 'admin' and 'delete' actions
				'actions'=>array('admin','delete'),
				'users'=>array('admin'),
			),
                        array('allow', // allow admin user to perform 'admin' and 'select' actions
				'actions'=>array('admin','select'),
				'users'=>array('admin'),
			),
			array('deny',  // deny all users
				'users'=>array('*'),
			),
		);
	}

	/**
	 * Displays a particular model.
	 * @param integer $id the ID of the model to be displayed
	 */
	/*public function actionView($id)
	{
		$this->render('view',array(
			'model'=>$this->loadModel($id),
		));
           
	}*/

	private function performSave(User $model=null){
		    if($model===null) throw new CHttpException(400, 'User $model is null.');
            $transaction = Yii::app()->db->beginTransaction(); //memulai transaksi
            try {   
            		$oldpassword = $model->password;
                    $model->attributes=$_POST['User'];
                    if($model->password!=$oldpassword) $model->password=Yii::app()->controller->module->encrypting($model->password);
                    if($model->id===null){                    	
                    	$model->activkey=Yii::app()->controller->module->encrypting(microtime().$model->password);
                    	$model->createtime=time();
                    	$model->lastvisit=time();
						$model->superuser=0;
						$model->status=1;
                	}

                	//echo "<br /><br /><br /><br /><br /><br /><br /><br /><br /><br />echo";
                    $model->save();
                    $this->deleteAuthassignment($model->id);
                    if($_POST['User']['wewenang']!=null){
                          $authAssignmentModel = new Authassignment();
                          $authAssignmentModel->itemname = $_POST['User']['wewenang'];
                          $authAssignmentModel->userid = $model->id;
                          $authAssignmentModel->save();
                    }
                $transaction->commit();
                return true;
            } catch (Exception $ex) {
                $transaction->rollback(); // membatalkan transaksi          
                throw new CHttpException(400, $ex->getMessage());
            }		
	}
	/**
	 * Creates a new model.
	 * If creation is successful, the browser will be redirected to the 'view' page.
	 */
	public function actionCreate()
	{
        $model=new User;
        $profile=new Profile;
		// Uncomment the following line if AJAX validation is needed
		// $this->performAjaxValidation($model);
		if(isset($_POST['User']))
		{
			if($this->performSave($model)); $this->redirect(array('index'));
		}

		$this->render('create',array(
			'model'=>$model,
			'profile'=>$profile,	
		));
	}

	/**
	 * Updates a particular model.
	 * If update is successful, the browser will be redirected to the 'view' page.
	 * @param integer $id the ID of the model to be updated
	 */
	public function actionUpdate($id)
	{
		// Uncomment the following line if AJAX validation is needed
		// $this->performAjaxValidation($model);

                $model=$this->loadModel($id);
                $authAssignmentModel=$this->loadModelAuthAssignment($id);
                if($authAssignmentModel!==null)
                $model->wewenang=$authAssignmentModel->itemname;

		if(isset($_POST['User']))
		{
	            if($this->performSave($model)); //$this->redirect(array('index'));
		}

		$this->render('update',array(
			'model'=>$model,
		));
	}
        
     /**
	 * Deletes a particular model.
	 * If deletion is successful, the browser will be redirected to the 'admin' page.
	 * @param integer $id the ID of the model to be deleted
	 */
	public function actionDelete($id)
	{
		if(Yii::app()->request->isPostRequest)
		{
			// we only allow deletion via POST request
            $transaction = Yii::app()->db->beginTransaction(); //memulai transaksi
            try {                    
            	$this->deleteAuthassignment($id);
            	$this->loadModel($id)->delete();           
                $transaction->commit();
            } catch (Exception $ex) {
                $transaction->rollback(); // membatalkan transaksi          
                throw new CHttpException(400, $ex->getMessage());
            } 
			// if AJAX request (triggered by deletion via admin grid view), we should not redirect the browser
			if(!isset($_GET['ajax']))
				$this->redirect(isset($_POST['returnUrl']) ? $_POST['returnUrl'] : array('admin'));
		}
		else
			throw new CHttpException(400,'Invalid request. Please do not repeat this request again.');
	}

        public function deleteAuthassignment($userid)
        {
                        $obj = $this->loadModelAuthAssignment($userid);
                        if($obj!=null)
                            $obj->delete();
        }

        /**
	 * Lists all models.
	 */
	public function actionIndex()
	{
         	$model=new User('search');
            $model->unsetAttributes();  // clear any default values
			if(isset($_GET['Users']))
				$model->attributes=$_GET['Users'];

			$this->render('index',array(
				'model'=>$model,
			));
	}

	/**
	 * Manages all models.
	 */
        
	/*public function actionAdmin()
	{
		$model=new User('search');
                $model->unsetAttributes();  // clear any default values
                
		if(isset($_GET['Users']))
			$model->attributes=$_GET['Users'];

		$this->render('index',array(
			'model'=>$model,
		));
	}*/
        
	/**
	 * Returns the data model based on the primary key given in the GET variable.
	 * If the data model is not found, an HTTP exception will be raised.
	 * @param integer the ID of the model to be loaded
	 */
	public function loadModel($id)
	{
		$model=User::model()->findByPk($id);
		if($model===null)
			throw new CHttpException(404,'The requested page does not exist.');
		return $model;
	}

    public function loadModelAuthAssignment($userid)
	{
		$authAssignmentModel=Authassignment::model()->find('userid=\''.$userid.'\'');
		return $authAssignmentModel;
	}

	/**
	 * Performs the AJAX validation.
	 * @param CModel the model to be validated
	 */
	protected function performAjaxValidation($model)
	{
		if(isset($_POST['ajax']) && $_POST['ajax']==='users-form')
		{
			echo CActiveForm::validate($model);
			Yii::app()->end();
		}
	}
}
